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In the Claims 

Claims 1,5,1 1-13, 16, 27, 36, 37, 41 and 42 are amended 
Claims 4, 14, 17, 18 and 34 are canceled. 

Claims 1-3, 5-13, 15, 16, 19-33 and 35-42 remain in the application and are 
listed just below: 

4 1 • (Currently Amended) A method of updating keys that decrypt login 
tickets that log a user into multiple sites, the method comprising: 
generating a first key having a first version number, 

providing tickets encoded consistent with the first key, the ticket having a 
version number corresponding to the first version number, 

generating a second key having a second version number, and when the 
second key becomes current at a site, providing tickets encoded consistent with the 
second key, the ticket having a version number corresponding to the second version 
number; 

wherein said tick e ts are configur e d to enabl e a uoor - to access and us e on e or 
more affiliat e d s e rvers without requiring any additional authentication informatio n 
other than auth e ntication information - originally provid e d by th e user to an 
auth e ntication oorvor said keys comprise key data and executable code for decrypting 



tickets, 



<9 



(Original) The method of claim 1 wherein a different key is provided 
to each site, and wherein each key is encrypted for decoding at one site. 
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J: 




3. (Original) The method of claim 1 and further including generating a 
configuration file to track keys for each site. 

(Canceled). 

^ 5. (Currently Amended) A computer readable medium having 
instructions stored thereon for causing a computer to perform a method of updating 
keys that decrypt login tickets that log a user into multiple sites, the method 
comprising: 

generating a first key having a first version number, 

providing tickets encoded consistent with the first key, the ticket having a 
version number corresponding to the first version number, 

generating a second key having a second version number, and 

when the second key becomes current at a site, providing tickets encoded 
consistent with the second key, the ticket having a version number corresponding to 
the second version number, 

wherein said tiokcto ore configured to enabl e a user to ooooaa and uso ono or 
more affiliated servers without r e quirin g- any additional auth e ntication information 
other than authentication information originally providod by th e us e r to a s 
authentication server said keys comprise key data and executable code for decrypting 
tickets. 



6. (Original) A method of generating keys that decrypt login tickets that 
log a user into multiple sites, the method comprising: 



PAGE S/30* RCVD AT 6/25J2004 5:07:54 PM [Eastern DayUght Time] * SVR:USPTO-EFXRF-in * DNIS:8729306 k CS1D:509 323 S»79 * DURATION (mm-ss):0748 



JUN 25 2004 14:20 FR LEE - HAYES PLL 509 323 8979 TO 17038729306 P. 06/30 



3 
4 
5 
6 
7 
8 
9 
10 
11 
12 
13 
14 
15 
16 
17 
18 
IP 
20 
21 
22 
23 
24 
25 



generating a first key in the form of an executable having a first version 
number; 

generating a second key in the form of an executable having a second version 
number; and 

providing an indication to a login server identifying which key is current for 
each site such that the tickets are properly encoded. 



^ , . (Original) The method of claim 6 and further comprising distributing 
the key to multiple login servers in a secure manner. 



(Original) The method of claim 6 and further comprising updating a 
configuration file to track keys for each site. 



j 



9. (Original) A computer readable medium having instructions stored 
thereon for causing a computer to perform a method of generating keys that decrypt 
login tickets that log a user into multiple sites, the method comprising: 

generating a first key in the form of an executable having a first version 
number, 

generating a second key in the form of an executable having a second version 
number; and 

providing an indication to a login server identifying which key is current for 
each site such that the tickets are properly encoded 

\j 10. (Original) A system that generates keys that decrypt login tickets that 
log a user into multiple sites, the system comprising: 
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a key generator that generates a first key in the form of an executable having a 
first version number and generates a second key in the form of an executable having 
a second version number, and 

means for providing information to a login server identifying which key is 
current for each site such that the tickets are properly encoded 

^11. (Currently Amended) A method of updating keys that decrypt login 
tickets that log a user into multiple sites, the method comprising: 

generating a new key with an incremented version number; 

sending the new key to a partner site for use in decoding tickets with the 
incremented version number, 

updating key and version information for a login server; and 

generating tickets decodable by the new key when an indication that a key 
having a previous version number has expired; 

wherein said tick e ts arc configured to onablo a mot to aoc e ss and use ono - or 
moro affiliated - Gorvers without requiring any additional authentication informntio B 
other than outhontioation information originally provided by th e us e r to on 
authentic a tion server said keys comprise key data and executable code for decrypting 
tickets . 

^\ 12. (Currently Amended) A computer readable medium having 
instructions stored thereon for causing a computer to perform a method of updating 
keys that decrypt login tickets that log a user into multiple sites, the method 
comprising: 

generating a new key with an incremented version number; 
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sending the new key to a partner site for use in decoding tickets with the 
incremented version number, 

updating key and version information for a login server; and 

generating tickets decodable by die new key when an indication that a key 
having a previous version number has expired; 

wherein oaid tiolcota ore configured to e nobl e- a - user to aoooqq and us e on e- o f 
mor e affiliat e d o e rv e rs without r e quiring - any additional authentication informatio n 
other than authentication information originally provided by the user to an 
authentication serv e r said keys comprise key data and executable code for decrypting 
tickets. 



\f 13. 



(Currently Amended) A method of updating a key used to decrypt 
tickets used to log into a site, the method comprising: 

receiving an updated key with a new version number; 

setting a time for an old current key having an old version number to expire; 

making the updated key the current key; 

wherein qnid tiokoto oro configured to enable a uocr to aooooo and use on e or 
mor e affiliat e d oorvore without requiring any additional authentication information 
oth e r than auth e ntication information originally provided by th e us e r to an 
authentication sorvor at least one of said keys comprise executable code for making 
the updated key the current key . 



/| (Cancel). 
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yj 15. (Original) The method of claim 13 and further comprising redirecting 
users attempting to log into the site using the old current key. 



(Currently Amended) A computer readable medium having 
instructions stored thereon for causing a computer to perform a method of updating a 
key used to decrypt tickets used to log into a site, the method comprising: 
receiving an updated key with a new version number; 
setting a time for an old current key having an old version number to expire; 
making the updated key the current key; 

wherein said tiokcto are configured to enabl e a user to access and use ono or 
more affiliat e d s e rv e rs without r e quiring any additional - auth e ntication information 
oth e r than authentication information originally provid e d by the user to on 
authentication sorvor wherein at least one of said keys comprise executable code for 
making the updated key the current kev . 





19 J (Original) A method of managing keys used to decrypt tickets for 
6nto a site, the method comprising; 
receiving a first key with a first version number, 
encrypting the first key using a hardware address; 
changing a current key variable to the first version number, 
receiving a new key with an incremented version number; 
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encrypting the new key using a hardware address; and 
identifying the new key as the current key. 

\J 20. (Previously Presented) The method of claim 19 and further comprising 
setting a time for the first key identifying when such key may no longer be used. 

n! 2 I . (Original) The method of claim 20 wherein a user currently logged in 
may continue to use the first key until the time expires. 



22. (Original) The method of claim 20 wherein new user may only use a 
ticket corresponding to the second key when the second key is made the current key. 



^23^ (Original) The method of claim 20 wherein the time is set to a 
reauthorization time determined by the site. 



(Original) The method of claim 19 wherein a new user using a 
previous version ticket will be redirected to obtain a ticket corresponding to the new 
key following the new key being identified as the current key. 



(Original) The method of claim 19 wherein the new key is identified as 
key by changing the current key variable to the second version number. 



26y (Original) A computer readable medium having instructions stored 
thereon for causing a computer to perform a method of managing keys used to 
decrypt tickets for logging onto a site, the method comprising: 
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receiving a first key with a first version number; 
encrypting the first key using a hardware address; 
changing a current key variable to the first version number, 
receiving a new key with an incremented version number, 
encrypting the new key using a hardware address; and 
identifying die new key as the current key. 

(Currently Amended) A method of updating keys used to decrypt 
tickets used to log into multiple sites on a network, the method comprising; 

generating a new key with a new version number to take the place of an old 
key with an old version number; 

storing the new key on a site to be logged into by a user, 

changing a current key indication to the new key; 

allowing current logged in users to continue using the old key; and 

redirecting new users to a login server to obtain a ticket consistent with the 
new key; 

wherein kevs are generated in an executable form which includes key 
information as well as code for decrypting tickets using the kev information . 

28. (Original) The method of claim 27 wherein the old key may be used 
by current logged in users for a predetermined amount of time. 

29. (Original) The method of claim 28 wherein the predetermined amount 
of time is no more than a reauthorization time by which a current user is normally 
required to provide login information. 
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^30^ (Original) The method of claim 28 wherein the predetermined amount 
of time may be set to zero to force all current and new users to login with a ticket 
consistent with the new key version. 



3Ly (Original) The method of claim 27 wherein the ticket contains a 
version number consistent with the version number of the key which can decrypt it 

9 C^y (Original) Th e method of claim 27 wherein keys are encrypted by the 

10 site using a hardware address, and stored by the site, 

12 (^) (Orig* 11 ^) Th e method of claim 27 wherein a new key is generated 

u based on a request of the site. 

14 

is ( 34. J (Canceled). 

10 

17 (35*? (Original) The method of claim 27 wherein the keys are generated by 

is an authentication server, mad are distributed to multiple login servers for providing 

19 login tickets. 
20 

21 (Currently Amended) A computer readable medium having 

22 instructions stored thereon for causing a computer to perform a method of updating 

23 keys used to decrypt tickets used to log into multiple sites on a network, the method 

24 comprising: 

25 
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generating a new key with a new version number to take the place of an old 
key with an old version number; 

storing the new key on a site to be logged into by a user; 

changing a current key indication to the new key; 

allowing current logged in users to continue using the old key; and 

redirecting new users to a login server to obtain a ticket consistent with the 
new key, 

wherein the keys comprise key data and executable code for decrypting 

tickets* 



J 37, 



(Currently Amended) A method of logging on to multiple sites, the 
method comprising: 

sending a first login ticket to a desired site, wherein the login ticket is 
encrypted to be decoded by a first key having a first version number; 
receiving an indication that the first key has expired; 

obtaining a second login ticket from an authentication server, wherein the 
second login ticket is encrypted consistently with a new key having a second version 
number; and 

sending the second login ticket to the site to log into the site; 

wherein said tick e t s are configured to e nable a uoor to acc e ss and uqc ono or 
more affiliated corv e rs without r e quiring any additional - authentication information 
other than auth e ntication information originally provid e d by tho user to on 
authentication server the keys comprise key data and executable code for decrypting 
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J 38. (Original) The method of claim 37 wherein the tickets contain a 
version number which is readable without decryption. 



39. (Original) The method of claim 38 wherein the version number is a 
one digit Hex 5 integer. 



^40. (Original) The method of claim 38 wherein the encrypted ticket 
comprises an unencrypted version number, and encrypted information sufficient to 
log a user into a desired site. 

\J 41. (Currently Amended) A computer readable medium having 
instructions stored thereon for causing a computer to perform a method of logging on 
to multiple sites, the method comprising: 

sending a first login ticket to a desired site, wherein the login ticket is 
encrypted to be decoded by a first key having a first version number, 

receiving an indication that the first key has expired; 

obtaining a second login ticket from an authentication server, wherein the 
second login ticket is encrypted consistently with a new key having a second version 
number; and 

sending the second login ticket to the site to log into the site; 

wherein said tiok e to ore configured to enable? a usor - to access and use ono or 
more affiliated servers without requiring any additional authentication information 
et her than authentication information originally providod by th e us e r to an 
authentication server the kevs comprise key data and executable code for decrypting 

tfctet$. 
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42. (Currently Amended) An encrypted ticket for use in logging on to a 
website, the ticket comprising: 

an unencrypted version number corresponding to a key version number stored 
on the website; and 

an encrypted string identifying the website and information, which when 
decrypted using the key having the same version number authenticates the user for 
logging the user into the website; 

wherein said tick e t is configur e d to enabl e a us e r to aoo e oo and us e- on e or 
more affiliated servers without requiring any additional authentication information 
other than auth e ntication—info r mati o n originally provid e d by th e user to an 
authentication s e rv e r the key comprises executable code for decrypting tickets . 
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